Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2021-34359

A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running Proxy Server. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already fixed this vulnerability in the following versions of Proxy Server: QTS 4.5.x: Proxy Server 1.4.2 ( 2021/12/30 ) and later
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 44.9%
CVSS Severity
CVSS v3 Score 6.9
CVSS v2 Score 3.5
Products affected by CVE-2021-34359
  • Qnap » Nas Proxy Server » Version: 1.3.0
    cpe:2.3:a:qnap:nas_proxy_server:1.3.0
  • Qnap » Qts » Version: 4.5.1
    cpe:2.3:o:qnap:qts:4.5.1
  • Qnap » Qts » Version: 4.5.1.1456
    cpe:2.3:o:qnap:qts:4.5.1.1456
  • Qnap » Qts » Version: 4.5.1.1461
    cpe:2.3:o:qnap:qts:4.5.1.1461
  • Qnap » Qts » Version: 4.5.1.1465
    cpe:2.3:o:qnap:qts:4.5.1.1465
  • Qnap » Qts » Version: 4.5.1.1480
    cpe:2.3:o:qnap:qts:4.5.1.1480
  • Qnap » Qts » Version: 4.5.1.1495
    cpe:2.3:o:qnap:qts:4.5.1.1495
  • Qnap » Qts » Version: 4.5.1.1540
    cpe:2.3:o:qnap:qts:4.5.1.1540
  • Qnap » Qts » Version: 4.5.2
    cpe:2.3:o:qnap:qts:4.5.2
  • Qnap » Qts » Version: 4.5.2.1566
    cpe:2.3:o:qnap:qts:4.5.2.1566
  • Qnap » Qts » Version: 4.5.2.1594
    cpe:2.3:o:qnap:qts:4.5.2.1594
  • Qnap » Qts » Version: 4.5.2.1630
    cpe:2.3:o:qnap:qts:4.5.2.1630
  • Qnap » Qts » Version: 4.5.3
    cpe:2.3:o:qnap:qts:4.5.3
  • Qnap » Qts » Version: 4.5.3.1652
    cpe:2.3:o:qnap:qts:4.5.3.1652
  • Qnap » Qts » Version: 4.5.3.1670
    cpe:2.3:o:qnap:qts:4.5.3.1670
  • Qnap » Qts » Version: 4.5.3.1697
    cpe:2.3:o:qnap:qts:4.5.3.1697
  • Qnap » Qts » Version: 4.5.4
    cpe:2.3:o:qnap:qts:4.5.4


Products
Pricing
Contact Us

Shodan ® - All rights reserved